Gridinsoft Logo
File Icon

The OfficeSetup.exe File Analysis

Updated 17 days ago
Checked by Malaware Check
OfficeSetup.exe

Technical Analysis

File Name OfficeSetup.exe
File Type
PE32 executable (GUI) Intel 80386, for MS Windows
Scanner Version 1.0.216.174
Database Version 2025-05-20 18:00:25 UTC

Clean File

No threats detected by our scanner

0%
Detection Rate
8,405,736
File Size (bytes)
2025-05-20
Analysis Date

Scan Another File

File Identification

Hash Type Value Action
MD5
c6e1b9d2fd72230e756b473abc44c90f
SHA1
4ffd01953ccc5287b7f14de9c17cac7706bd691c
SHA256
f103dd3fced82be64313c9fa42b69b3a2fe1db0876385700ce97518969c3f199
SHA512
712a215197fce0a7dc3550328007e90d297bfd363721e1608b58dcc2aa1c4e8f923378344ae63d0fac50aa771133be6f92bb680ee9bcd6c1c106af203cf3ab23
ImpHash
2816fb1274f6f971076c1a7446ac3990

PE Analysis

Basic Information

Icon
Hash: cf8b3d44cc80ac3d3f5b2c3f6848133a
Fuzzy: 71fcd2e860bbcd562ce257f969072383
dHash: e0c8ccc6c6c6c0e0
Image Base 0x00400000
Entry Point 0x007fea0c
Compilation Time 2022-06-24 02:44:33
Checksum 0x0080945e (Actual: 0x0080945e)
OS Version 5.2
PEiD Signatures PE32 executable (GUI) Intel 80386, for MS Windows
PDB Path D:\dbs\el\ma4\Target\x86\ship\click2run\en-us.pre\SetupBootstrapper.pdb
Digital Signature OK
Imports 8 libraries
ADVAPI32, ole32, GDI32, OLEAUT32, KERNEL32, WS2_32, SETUPAPI, gdiplus
Exports 0 functions
Resources 50 Resources
Sections 5 Sections

Version Information

CompanyName Microsoft Corporation
FileDescription Microsoft Office
FileVersion 16.0.15330.20196
InternalName Bootstrapper.exe
LegalTrademarks1 Microsoft® is a registered trademark of Microsoft Corporation.
LegalTrademarks2 Windows® is a registered trademark of Microsoft Corporation.
OriginalFilename Bootstrapper.exe
ProductName Microsoft Office
ProductVersion 16.0.15330.20196
Translation 0x0000 0x04e4

PE Sections

Name Virtual Address Virtual Size Raw Size Entropy Characteristics MD5
.text 0x00001000 4,713,579 bytes 4,713,984 bytes 6.70 (Compressed) IMAGE_SCN_CNT_CODE|IMAGE_SCN_MEM_EXECUTE|IMAGE_SCN_MEM_READ ACC5FA5F0156ACB63168EEE8A09153B3
.rdata 0x00480000 1,890,736 bytes 1,890,816 bytes 5.07 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 11FC4AC36E87558BDB4EFB64F5BF94DC
.data 0x0064e000 264,788 bytes 194,048 bytes 5.49 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ|IMAGE_SCN_MEM_WRITE 1E3A94BB927AE8C28818FC153C6939B7
.rsrc 0x0068f000 1,201,804 bytes 1,202,176 bytes 7.79 (Packed/Encrypted) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_READ 44088AA8CF9CC855C91E63DB7C7C41F3
.reloc 0x007b5000 381,808 bytes 381,952 bytes 6.48 (Normal) IMAGE_SCN_CNT_INITIALIZED_DATA|IMAGE_SCN_MEM_DISCARDABLE|IMAGE_SCN_MEM_READ B5F7F361AFA88D9631522D560190E9DA
Entropy Analysis Alert

1 section(s) with high entropy (≥7.5) detected - possible packing/encryption

1 section(s) with elevated entropy (≥6.5) - possible compression

Resource Analysis

Total Resources: 50 (1,198,100 bytes)
Resource Type Count Total Size Percentage
PNG 32 1,091,345 bytes
91.1%
RT_ICON 4 82,656 bytes
6.9%
RT_STRING 11 21,172 bytes
1.8%
RT_GROUP_ICON 1 62 bytes
0%
RT_VERSION 1 1,056 bytes
0.1%
RT_MANIFEST 1 1,809 bytes
0.2%

Certificate Chain Analysis

No Digital Signatures

This file is not digitally signed.

Security Implications:
  • Cannot verify the publisher's identity
  • Increased security risk when running this file
  • May trigger security warnings on some systems

⚠ This file either lacks a digital signature or the certificate chain could not be verified
Exercise caution when executing unsigned files from unknown sources

Certificate Verification Status

OK

Remember: This is Result of Online Virus Scanner

Gridinsoft Anti-Malware has a much more powerful virus scanning engine. We recommend using it for a more precise diagnosis of infected systems. This brief guide will help you install our flagship product for more accurate diagnostics:

Download Anti-Malware

Keep Your System Protected

This file appears clean, but regular security maintenance is important

  1. Regular Scans: Run weekly system scans to detect new threats before they can cause damage.
  2. Keep Software Updated: Ensure your operating system and all applications have the latest security patches.
  3. Safe Browsing: Avoid suspicious websites and never download software from untrusted sources.
  4. Email Security: Be cautious with email attachments and links, even from known contacts.
Proactive Protection
This file passed all security checks, but stay vigilant. New malware variants appear daily that can evade detection. Always verify files come from official sources and check digital signatures when available.

Leave a Comment

Share your thoughts or insights about this file. Do you align with our conclusion?

* Your feedback could influence our rating, and rest assured, your email will remain confidential and will only be used to communicate with you if necessary.
Your Score for

Gridinsoft Anti-Malware

Cure your PC from any kind of malware

GridinSoft Anti-Malware will help you to protect your computer from spyware, trojans, backdoors, rootkits. It cleans your system from annoying advertisement modules and other malicious stuff developed by hackers.

Anti-Malware Download Now
Gridinsoft Anti-Malware